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^Secugity Sy stem 

The invention relates to a security system for identity 
and authorization checking in a protected communication 
environment . 

The identity and authorization checking is performed in a 
protected communication environment using, as a rule, per- 
sonal identifiers in combination with a memory card or chip 
card. A user of an automatic teller machine, for instance, 
is required to first insert a bank card and then enter the 
user's personal identification number. Experience has shown 
that identity and authorization checks of this kind are not 
sufficient to avoid any abuse. It is not only awkward to 
enter the personal identification number, but this number is 
also relatively easy to spy out. 

Identity and authorization checks which are considered to 
be very secure are those performed by means of a fingerprint 
sensor. High-resolution sensors operating in accordance with 
the principle of a capacitive matrix have been disclosed, 
which derive unique and unmistakable characteristics from a 
fingerprint and, after a highly effective data reduction, 
make such characteristics available as a characteristic data 
set. This characteristic data set may, in one application, 
be stored as an access and authorization condition. In such 
a system the entry of a personal identification code is not 
required* However, it can not be excluded in principle that 
the characteristic data set provided by the fingerprint 
sensor is intercepted or spied out while on its transmission 
path. 

The invention creates a security system which provides 
very high protection while doing without the user having to 
enter a personal identification code. According to the 



invention, the security system comprises a chip card reader 
in the format of a PC card which has personal data stored 
thereon. Coupled to the chip card reader is a fingerprint 
sensor. A validation means validates the personal informa- 
tion read from the chip card depending on data provided by 
the fingerprint sensor. For a positive outcome of an iden- 
tity and authorization check, both the chip card with the 
personal data needs to be available and also the character- 
istic data set provided by the fingerprint sensor needs to 
be correctly related to the personal data stored on the chip 
card. 

The security system in accordance with the invention 
allows to establish a highly secure control of the communi- 
cation between a local data processing apparatus and a net- 
work. According to a first approach, in which the finger- 
print sensor is integrated in the chip card reader, the 
security system comprises an interface for connection to the 
network. The interface involved may be a conventional net- 
work media adapter, a modem, or an IR interface. The local 
data processing apparatus and the network can communicate 
only via the security system. By providing such a security 
system it can be ensured that only authorized users are 
permitted to access the network. Provision can further be 
made that all messages transmitted in one or in both direc- 
tions are signed by the characteristic data set provided by 
the fingerprint sensor and are thus authenticated. 

A second approach consists in arranging the fingerprint 
sensor on a module coupled with the chip card reader by a 
detachable plug connection. In this approach, in order to 
prevent the characteristic data set provided by the finger- 
print sensor from being spied out in the environment of the 
plug connection, this characteristic data set is not trans- 
mitted directly, but in an encoded form. To this end, the 
module is provided with a SAM card reader and an internal 
processor. Using such an embodiment of the security system, 



communication between a local data processing apparatus and 
a network or the like may also be controlled with a maximum 
degree of security. 

Further features and advantages of the invention will be 
obvious from the following description and from the drawings 
to which reference is made and in which: 

Figure 1 is a schematic side view of a chip card reader 
with a chip card inserted and the sensor module slipped on; 

Figure 2 is a view of an end face of the sensor module; 

Figure 3 is a top view of the sensor module, with the 
chip card shown cut off; 

Figure 4 shows three possible embodiments for the housing 
of the sensor module; 

Figure 5 is a schematic side view of the chip card reader 
and the sensor module according to a further embodiment; 

Figure 6 is a view of an end face of the sensor module; 

Figure 7 is a top view of the sensor module; 

Figure 8 is a schematic side view of a further embodiment 
of the chip card reader and the sensor module; and 

Figure 9 is a block diagram of the security system. 

The security system, shown in Figure 1, for identity and 
authorization checking in a protected communication environ- 
ment comprises a chip card reader 10 in the format of a PC 
card and a sensor module 12 which has a fingerprint sensor 
14 and is detachably coupled to the chip card reader 10 by a 
plug connection. The chip card reader 10 includes an accom- 
modation channel for a chip card 16 and, arranged in the 
accommodation channel, a contact field 18 for contacting the 
chip card 16. In the case of the embodiment shown here, the 



accommodation channel for the chip card is formed between a 
cover plate 10a and the main body 10b of the chip card 
reader. 

The sensor module 12 is coupled to the narrow end face of 
the chip card reader 10, from which the chip card 16 pro- 
jects. The housing of the sensor module 12 is provided with 
a slot 20 for the passage of the chip card 16. The finger- 
print sensor 14 is embedded in the upper main surface of the 
sensor module 12 . The sensor module 12 has a pair of guide 
pins 24 which are insertable into corresponding receiving 
openings at the narrow end face of the chip card reader 10. 
A series of contact pins 2 6 of the sensor module 12 are 
adapted to be inserted into corresponding contact ports on 
the same end face of the chip card reader 10. Actuating 
members 28 for a locking means are mounted on the narrow 
sides of the sensor module 12; by means of the locking means 
the sensor module 12 is detachably locked with the chip card 
reader 10. Figure 3 also illustrates the contact surface 16a 
of the chip card 16. With the chip card 16 inserted in the 
chip card reader 10, the contact surface 16a ends up lying 
beneath the contact field 18. 

Depending on how the accommodation channel for the chip 
card 16 is arranged in the chip card reader, the slot 2 0 to 
be seen in Figure 2 is provided in the housing of the sensor 
module 12, or otherwise, recesses 2 0a and 2 0b are provided 
at the underside and at the upper side, respectively, of the 
sensor module 12, as illustrated in Figure 4. 

In the embodiment illustrated in Figure 5, the sensor 
module 12 has formed thereon a housing block with a ramp- 
shaped supporting surface in which the fingerprint sensor 14 
is embedded. In addition, the sensor module 12 is configured 
for receiving and reading a so-called SAM card or SIM card 
32. The card in question is a known security and authentica- 
tion module . 



A further component of the sensor module 12 is an inter- 
face for the connection to a communication system; in the 
embodiment shown, this is a network media adapter to which a 
network cable 34 is connected by means of a plug connector 
36. 

Figure 8 shows an embodiment of the chip card reader with 
an accommodation channel for the chip card which is formed 
between a bottom plate and the main body of the chip card 
reader . 

The concept underlying the security system will now be 
explained with reference to the block diagram in Figure 9. 

The security system comprised of the chip card reader 10 
with chip card 16, on the one hand, and the sensor module 12 
with the fingerprint sensor 14 and the SAM card 32, on the 
other hand, is fitted between a data processing apparatus 
(PC) referred to as host and a network connection. The chip 
card reader 10, just like the sensor module 12, is provided 
with a separate local bus . The two bus systems are coupled 
with each other via the plug connection between the chip 
card reader 10 and the sensor module 12. The chip card 
reader 10 includes an internal processor 40 which assumes 
the functions of authentication, identification, crypto- 
graphic coding, and signature. On the host side the chip 
card reader 10 is equipped with a suitable interface 42, 
more particularly a PCMCIA interface. The chip card reader 
10 further includes a storage 44 for secured data in flash 
technology and a time stamping unit 4 6 which may include a 
radio-controlled clock module. The chip card 16 is designed 
as a so-called smart card and has processor and storage 
circuits of its own. In particular, personal keys and code 
words for the purpose of identity and authorization checking 
are stored in the chip card 16. All of the above-mentioned 
components of the chip card reader 10 are coupled to its 
internal local bus . 
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The sensor module 12 likewise comprises an internal pro- 
cessor 50, the task of which consists, above all, in the 
analysis of the fingerprint data provided by the sensor 14 
for the purpose of identification. The SAM card is read out 
via a contact unit 52. The SAM card has characteristic fin- 
gerprint data of the authorized user stored thereon. The 
communication interface of the sensor module 12 includes an 
interface controller 54 and a network media adapter 56, to 
which the network cable 34 is connected. 

In addition to the characteristic fingerprint data of the 
authorized user the SAM card includes data and structures 
for encoding such data, which is then transferred to the 
chip card reader 10 in an encoded form for evaluation. 

An encoded transmission of the fingerprint data can be 
done without if the fingerprint sensor and the chip card 
reader are integrated with each other, so that it is not 
possible to intercept the data from the fingerprint sensor. 
In the case of this alternative embodiment, the communica- 
tion interface (network media adapter) is integrated in the 
system as well. 



Claims 



1. A security system for identity and authorization checking 
in a protected communication environment, comprising: 

a chip card reader in the format of a PC card; 

a chip card having personal data stored thereon; 

a fingerprint sensor which is coupled to the chip card 
reader ,* 

a validation means for validating the personal informa- 
tion read from the chip card depending on data provided 
by the fingerprint sensor. 

2. The security system according to claim 1, characterized 
in that the fingerprint sensor is arranged on a module 
coupled with the chip card reader by a detachable plug 
connection. 

3. The security system according to claim 2, characterized 
in that the module is adapted to be slipped onto a narrow 
end face of the chip card reader from which the chip card 
projects . 

5. The security system according to claim 3, characterized 
in that a slot is disposed in the module for the chip card 
to pass therethrough. 

6. The security system according to any of claims 2 to 5, 
characterized in that the module includes a SAM or SIM card 
reader . 

7. The security system according to claim 6, characterized 
in that the data provided by the fingerprint sensor is 
processed along with the data read from the SAM or SIM card 
in an internal processor of the module to yield an encoded 
identity information. 



8. The security system according to any of claims 1 to 7 , 
characterized by an interface for the connection to a 
communication system, in particular a network. 

9. The security system according to claims 2 and 8, charac- 
terized in that the interface is contained in the module. 

10. The security system according to claim 8 or 9, charac- 
terized in that signed messages are able to be exchanged 
with the communication environment via the interface. 



Abstract 



A security system for identity and authorization checking in 
a protected communication environment is based on the use of 
a chip card reader in the format of a PC card. The chip card 
has personal data stored thereon. A fingerprint sensor is 
coupled to the chip card reader. The personal information 
read from the chip card is validated depending on data 
provided by the fingerprint sensor. 
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which a patent is sought on the invention entitled 

SECURITY SYSTEM 

the specification of which 
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Hp is attached hereto. 

2® was filed on February 9, 2001 as United States Application No, or PCT international 

ffl Application Number 09/762,649 

-F and was amended on 

~~ (if applicable) 

Pi hereby state that 1 have reviewed and understand the contents of the above identified specification, 
^including the claims, as amended by any amendmenrreferred to above. 

Jfl acknowledge the duty to disclose to the United States Patent and Trademark Office all information 
^ known to me to be material to patentability as defined in Title 37, Code of Federal Regulations, 
^Section 1.56. 

I hereby claim foreign priority benefits under Title 35, United States Code, Section 119(a)-(d) or 
Section 365(b) of any foreign application(s) for patent or inventors certificate, or Section 365(a) of 
any PCT international application which designated at least one country other than the United 
States, listed below and have also identified below, by checking the box, any foreign application for 
patent or inventor's certificate or PCT International application having a filing date before that of the 
application on which priority is claimed. 

Prior Foreign Application(s) Priority Not Claimed 



298 14 427.1 Germany 11 August 1998 q 

(Number) (Country) (Day/Montb/Year Filed) 
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(Number) (Country) (Day/Month/Year Filed) 

. □ 

(Number) (Country) (Day/Month/Year Filed) 



Form (9*95) (Modified) 



P02/REVQ2 



Patent and Trademark Offtce-U.S. DEPARTMENT OF COMMERCE 



Page 2 of 3 



I hereby claim the benefit under 35 U.S.C. Section 119(e) of any United States provisional 



(Application Serial No,) 


(Filing Date) 


(Application Serial No.) 


(Filing Date) 


(Application Serial No,) 


(Filing Date) 



I hereby claim the benefit under 35 U. S. C. Section 120 of any United States application^), or 
Section 365(c) of any PCT International application designating the United States, listed below and, 
insofar as the subject matter of each of the claims of this application is not disclosed in the prior 
United States or PCT international application in the manner provided by the first paragraph of 35 
U.S.C Section 112. I acknowledge the duty to disclose to the United States Patent and Trademark 
ppffice all information known to me to be material to patentability as defined in Title 37. C. F. R M 
yjSection 1 .56 which became available between the filing date of the prior application and the national 



Spr PCT International filing date of this application: 




l}f PCT/EP99/05S79 
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National Phase (abandoned) 


^ (Application Serial No.) 


(Filing Date) 


(Status) 

(patented, pending, abandoned) 


:i f (Application Serial No.) 


(Filing Date) 


(Status) 

(patented, pending, abandoned) 


(Application Serial No.) 


(Filing Date) 


(Status) 

(patented, pending, abandoned) 



I hereby declare that all statements made herein of my own knowledge are true and that all 
statements made on information and belief are believed to be true; and further that these statements 
were made with the knowledge that willful false statements and the like so made are punishable by 
fine or imprisonment, or both, under Section 1001 of Title 18 of the United States Code and that 
such willful false statements may jeopardize the validity of the application or any patent issued 
thereon. 
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agent(s) to prosecute t^is application and transact all business in the Patent and Trademark Office 
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Full nsNne of sote or first inventor / / 0 
i Wolfgang Neifer A/ ll 




Sole or first inventor's signature r , ^-^7 / 1/ 

f\ p:j\ / n 






Residence " f / If 
Altenhauserstrasse 13, 85356 Frcising, GERMANY / (/ 
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